Access
A family of Microsoft relational database management systems designed for ease of use.
336 questions
Why did billing admin get a notifcation about reviewing a conditional access policy
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 84%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Corey March Admin
0
Reputation points
Our IT department was notified by one of our billing admins that they received the email below from microsoft security because she is a global administrator but she is not
In 2020, we introduced security defaults in Microsoft Entra ID, which significantly raised baseline security for organizations. Now, to build on those improvements, we’re introducing Microsoft-managed Conditional Access policies. Between , and December 31, 2023, we’ll create a new Conditional Access policy in your Company Name Tennant
This policy, Multifactor authentication for admins accessing Microsoft Admin Portals, will be created in report-only mode. This means that it won’t block any access, but it will generate reports on how it will affect users when it’s switched to the On state.
After the policy has been created in your tenant, you’ll have 90 days to evaluate and configure it. Then, if you haven’t already moved it to the On or Off state, it’ll be automatically moved to On. Once the policy is enabled, users covered by it will need to have multifactor authentication.
Recommended action
To avoid any potential disruption to users’ access and to ensure this policy meets your organization’s needs, take the following actions within 90 days of its creation, before it’s moved to the On state:
· Review the effects and benefits of the new policy. If you don’t want us to enable it automatically, set it to Off. Or, you may set it to On at any time.
· Customize this policy according to your specific needs, such as excluding emergency access accounts.
· Verify that all users covered by this policy have enabled and registered at least one multifactor authentication method. If necessary, run a registration campaign to set up the Authenticator app.
Help and support
If you have questions or need help, create a support request:
1. For Issue type, select Technical.
2. For Service type, select Azure Active Directory Sign-In and Multi Factor Authentication.
3. For Summary, type a description of your issue.
4. For Problem type, select Conditional Access.
5. For Problem subtype, select Microsoft Managed.
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 78%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Sandeep G-MSFT 16,521 Reputation points Microsoft Employee2023-11-14T14:35:04.0333333+00:00 Thank you for posting this in Microsoft Q&A.
I am looking into this issue and will get back to you post my research.
Sign in to comment